You’re trying to access an insecure resource (quotesondesign) from a secure site (codepen). There are a couple of things you need to do to fix this. First, use an HTTPS proxy. https://cors-anywhere.herokuapp.com/ works. Put that in front of your quotesondesign url. Also, since you’re using HTTPS now, you don’t need that JSONP stuff any more. Remove it from your configuration object and your URL. The final URL will look like this